Collect Logs for the PCI Compliance for Amazon VPC Flow Logs App

This page provides instructions for enabling VPC Flow Logs, as well as how to collect VPC Flow Logs using AWS S3 source or a CloudFormation template.

VPC Flow Logs can be published to Amazon CloudWatch Logs and Amazon S3. Each method has advantages. Using an AWS S3 source is more reliable, while using a CloudFormation template allows you to customize your logs by adding more information and filtering unwanted data.

You can use either of the following methods to collect Amazon VPC Flow Logs: